An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
Conclusion & alert: CVE-2019-18805 is rated High Risk (72.6/100): CVSS Critical severity, with medium exploitation likelihood (EPSS 3.43%). Core evidence: EPSS rose +2.86% over the last day, indicating growing attacker interest. Mandatory action: High exploitation likelihood—assess exposure and prioritize remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.57% | 3.43% | +2.86% |
| 2 | 2025-11-21 | 1.09% | 0.57% | -0.52% |
| 3 | 2025-11-18 | — | 1.09% | — |
Full EPSS history (16 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 9.8 | 3.1 | CRITICAL |
|
3.9 | 5.9 | [email protected] |
| 7.5 | 2.0 | HIGH |
|
10.0 | 6.4 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
not yet assigned | CVE-2019-18805 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. | https://security-tracker.debian.org/tracker/CVE-2019-18805 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2019-18805 |
suse
|
low | CVE-2019-18805 severity low: SUSE including 236 source package names (bpftool-4.18.0-193.el8, cluster-md-kmp-default-4.12.14-122.7.1, …), 528 product×package rows across 89 product lines (HPE Helion OpenStack 8, Image SLES12-SP5-Azure-BYOS, … (89 product lines)): Fixed 502, Known Not Affected 26. | https://www.suse.com/security/cve/CVE-2019-18805/ |
ubuntu
|
low | CVE-2019-18805 low priority: Ubuntu including 117 source packages (linux, linux-aws, …), 1274 status rows across 14 suites (bionic, disco, eoan, focal, groovy, hirsute, jammy, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 915, not-affected 192, released 150, ignored 17. | https://ubuntu.com/security/CVE-2019-18805 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| linux | linux_kernel | >= 4.4, < 4.4.180 | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | >= 4.9, < 4.9.172 | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | >= 4.14, < 4.14.115 | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | >= 4.19, < 4.19.38 | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | >= 5.0, < 5.0.11 | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc1:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc2:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc3:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc4:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc5:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc6:*:*:*:*:*:* |
| linux | linux_kernel | 5.1 | cpe:2.3:o:linux:linux_kernel:5.1:rc7:*:*:*:*:*:* |
| opensuse | leap | 15.0 | cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:* |
| opensuse | leap | 15.1 | cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 7.0 | cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* |
| netapp | active_iq_unified_manager | — | cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* |
| netapp | data_availability_services | — | cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:* |
| netapp | e-series_santricity_os_controller | >= 11.0.0, <= 11.60.3 | cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:* |
| netapp | hci_management_node | — | cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:* |
| netapp | solidfire | — | cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:* |
| netapp | steelstore_cloud_integrated_storage | — | cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:* |
| netapp | hci_compute_node | — | cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:* |
| netapp | hci_storage_node | — | cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:* |
| broadcom | fabric_operating_system | — | cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:* |
| netapp | aff_a700s_firmware | — | cpe:2.3:o:netapp:aff_a700s_firmware:-:*:*:*:*:*:*:* |
| netapp | fas8300_firmware | — | cpe:2.3:o:netapp:fas8300_firmware:-:*:*:*:*:*:*:* |
| netapp | fas8700_firmware | — | cpe:2.3:o:netapp:fas8700_firmware:-:*:*:*:*:*:*:* |
| netapp | aff_a400_firmware | — | cpe:2.3:o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:* |
| netapp | h610s_firmware | — | cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00035.html | Mailing List Third Party Advisory |
| http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html | Mailing List Third Party Advisory |
| https://access.redhat.com/errata/RHSA-2020:0740 | Third Party Advisory |
| https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.0.11 | Mailing List Patch Vendor Advisory |
| https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=19fad20d15a6494f47f85d869f00b11343ee5c78 | Mailing List Patch Vendor Advisory |
| https://security.netapp.com/advisory/ntap-20191205-0001/ | Third Party Advisory |